Denial Of Service (DoS)

kernel-rt is vulnerable to denial of service DoS attacks. The vulnerability exists through a race condition in the inetfragintern function in net/ipv4/inetfragment.c in the Linux kernel through 3.13.6 allows remote attackers to cause a denial of service use-after-free error or possibly have...

UBUNTU-CVE-2019-6130

Artifex MuPDF 1.14.0 has a SEGV in the function fzloadpage of the fitz/document.c file, as demonstrated by mutool. This is related to page-number mishandling in cbz/mucbz.c, cbz/muimg.c, and svg/svg-doc.c...

[SECURITY] Fedora 28 Update: haproxy-1.8.15-1.fc28

HAProxy is a TCP/HTTP reverse proxy which is particularly suited for high availability environments. Indeed, it can: - route HTTP requests depending on statically assigned cookies - spread load among several servers while assuring server persistence through the use of HTTP cookies - switch to...

PT-2019-17968 · Artifex · Artifex Mupdf

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF version 1.14.0 Description: The issue is related to a SEGV in the fz load page function of the fitz/document.c file. This problem arises from page-number mishandling in several files, including cbz/mucbz.c, cbz/muimg.c, and...

Oracle Linux 7 : keepalived (ELSA-2019-0022)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2019-0022 advisory. 1.3.5-8 - Fixed patch that was incorrectly removed 1652694 1.3.5-7 - Fix buffer overflow when parsing HTTP status codes 1652694 Tenable has extracted the...

GNU Binutils integer overflow vulnerability (CNVD-2019-00566)

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project to work with target files in a variety of formats, with connectors, assemblers, and other tools for target files and archives. An integer overflow vulnerability in t...

CentOS Update for keepalived CESA-2019:0022 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 7 : keepalived (CESA-2019:0022)

An update for keepalived is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

keepalived security update

CentOS Errata and Security Advisory CESA-2019:0022 An update for keepalived is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

GHSA-2X54-J4M3-R6WX sqla-yaml-fixtures is vulnerable to Code Injection

Sqlayamlfixtures versions up to 0.9.1 allows local users to execute arbitrary python code via the fixturetext argument in sqlayamlfixtures.load...

UBUNTU-CVE-2018-20671

loadspecificdebugsection in objdump.c in GNU Binutils through 2.31.1 contains an integer overflow vulnerability that can trigger a heap-based buffer overflow via a crafted section size...

Important: Red Hat Security Advisory: keepalived security update

An update for keepalived is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

PYSEC-2019-122

Sqlayamlfixtures 0.9.1 allows local users to execute arbitrary python code via the fixturetext argument in sqlayamlfixtures.load...

UBUNTU-CVE-2019-3574

In libsixel v1.8.2, there is a heap-based buffer over-read in the function loadjpeg in the file loader.c, as demonstrated by img2sixel...

PT-2019-16622 · Libsixel +1 · Libsixel +1

Name of the Vulnerable Software and Affected Versions: libsixel version 1.8.2 Description: The issue is related to a heap-based buffer over-read in the load jpeg function, located in the loader.c file. This can be demonstrated by using img2sixel. Recommendations: For libsixel version 1.8.2,...

UBUNTU-CVE-2018-11790

When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic Overflow at a string length calculation...

UBUNTU-CVE-2018-20815

In QEMU 3.1.0, loaddevicetree in devicetree.c calls the deprecated loadimage function, which has a buffer overflow risk...

DEBIAN-CVE-2018-20548

There is an illegal WRITE memory access at common-image.c function loadimage in libcaca 0.99.beta19 for 1bpp data...

DEBIAN-CVE-2018-20545

There is an illegal WRITE memory access at common-image.c function loadimage in libcaca 0.99.beta19 for 4bpp data...

libcaca illegal write memory access vulnerability (CNVD-2019-08078)

libcaca is a software library that converts images to color ASCII art. An illegal write memory access vulnerability exists in the loadimage function in common-image.c in libcaca 0.99.beta19, which can be exploited by an attacker to execute arbitrary code...